An open API service providing security vulnerability metadata for many open source software ecosystems.

Security Advisories: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk1OWotNWc5di0zZnBx

Paratrooper-newrelic Exposes of Sensitive Information to an Unauthorized Actor

The paratrooper-newrelic gem 1.0.1 for Ruby allows local users to obtain the X-Api-Key value by listing the curl process.

Source: GitHub Advisory Database
Origin: Unspecified
Severity: Low
Classification: General
Published: over 6 years ago
Updated: 8 months ago

Identifiers: GHSA-959j-5g9v-3fpq, CVE-2014-1234
References: Blast Radius: 1.0

Affected Packages

Dependent packages: 0
Dependent repositories: 0
Downloads: 4,265 total
Affected Version Ranges: <= 1.0.1
No known fixed version
All affected versions: 1.0.1